How to block access to xmlrpc.php for ALL USERS using OpenLitespeed ?

remics · Sep 7, 2021

How to block access to xmlrpc.php file? | OpenLiteSpeed Community and News

How I could generate a virtual host to apply this setting for ALL USERS?

Cold-Egg · Sep 8, 2021

For the rewrite rule, you can do it on either .htaccess file or the Rewrite tab on web admin.

remics · Sep 8, 2021

Could you explain to me the exact steps that I should follow to block access to xmlrpc.php to ALL USERS?

Cold-Egg · Sep 9, 2021

Check https://openlitespeed.org/kb/how-to-autoload-htaccess-with-openlitespeed/
in virtual host level, do you see Rewrite and Rewrite Rules section? Add the following rule there, and them graceful restart the web server

Code:

RewriteRule ^/(xmlrpc|wp-trackback)\.php - [F,L,NC]

remics · Sep 9, 2021

Hi!

I cannot edit any OpenLitespeed WebAdmin settings because by default it is in read-only mode.

Cold-Egg · Sep 10, 2021

Oh, I guess you are using DirectAdmin. You can create a .htaccess file under the virtual host document root, and put the rule there. This way should work too.

remics · Sep 10, 2021

Sorry for the mess!

The OpenLitespeed and DirectAdmin forums look pretty much the same, and as a user of both technologies, I was confused.

I created a thread about this on the DirectAdmin forum which is the appropriate place and I will leave the link here. Maybe I can help someone.

https://forum.directadmin.com/threa...-php-for-all-users-using-openlitespeed.64501/

How to block access to xmlrpc.php for ALL USERS using OpenLitespeed ?

remics

New Member

Cold-Egg

Administrator

remics

New Member

Cold-Egg

Administrator

remics

New Member

Cold-Egg

Administrator

remics

New Member